Sending authentication-requests to multiple radius-servers
Marinko Tarlac
mangia81 at gmail.com
Wed Nov 28 21:37:53 CET 2012
Some NASes can successfully use several servers. If the first one
doesn't respond, the request will be sent to the next RADIUS server
On 11/28/2012 4:07 PM, Alan DeKok wrote:
> Stefan Kuegler wrote:
>> Is it possible to send an authentication-request from a client to
>> multiple servers simultaneously ?
> Not really, no.
>
>> We now authenticate with HMAC-based One Time Password Token (aka
>> event-based token) from a Cisco ASA via radius to only one
>> freeradius-server. But we want to establish a second authentication
>> server for failover reasons.
> That's different.
>
>> When using event based tokens, it's absolute necessary that every server
>> receives the same authentication request simultaneously from the client
>> to trigger the next "event" on the server side.
> Well.. database synchronization really isn't a RADIUS problem. You're
> better off fixing the token system so that it works.
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list